Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

797 advisories

Loading
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3090 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3097 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3092 was published May 13, 2022
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but... High Unreviewed
CVE-2017-16777 was published May 13, 2022
mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the... High Unreviewed
CVE-2017-13130 was published May 13, 2022
360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse... High Unreviewed
CVE-2017-12653 was published May 13, 2022
An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware... High Unreviewed
CVE-2017-12579 was published May 13, 2022
A successful exploit of these vulnerabilities requires the local user to load a crafted DLL file... High Unreviewed
CVE-2015-1014 was published May 13, 2022
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive... High Unreviewed
CVE-2017-11158 was published May 13, 2022
Multiple untrusted search path vulnerabilities in installer in Synology Photo Station Uploader... High Unreviewed
CVE-2017-11159 was published May 13, 2022
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow... Moderate Unreviewed
CVE-2017-12266 was published May 13, 2022
A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local... High Unreviewed
CVE-2017-12314 was published May 13, 2022
An untrusted search path (aka DLL Preload) vulnerability in the Cisco Network Academy Packet... High Unreviewed
CVE-2017-12313 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in Advantech WebAccess versions prior to... High Unreviewed
CVE-2017-12717 was published May 13, 2022
An Uncontrolled Search Path or Element issue was discovered in i-SENS SmartLog Diabetes... High Unreviewed
CVE-2017-13993 was published May 13, 2022
In SpiderControl MicroBrowser Windows XP, Vista 7, 8 and 10, Versions 1.6.30.144 and prior, an... High Unreviewed
CVE-2017-14010 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and prior.... High Unreviewed
CVE-2017-14029 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in Progea Movicon Version 11.5.1181 and... High Unreviewed
CVE-2017-14017 was published May 13, 2022
Advantech WebAccess 8.1 and earlier contains a DLL hijacking vulnerability which may allow an... High Unreviewed
CVE-2017-5175 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to... Moderate Unreviewed
CVE-2017-5147 was published May 13, 2022
A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW).... High Unreviewed
CVE-2017-5176 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in Moxa SoftNVR-IA Live Viewer, Version... High Unreviewed
CVE-2017-5170 was published May 13, 2022
A DLL Hijacking issue was discovered in Schneider Electric Interactive Graphical SCADA System ... High Unreviewed
CVE-2017-6033 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in BLF-Tech LLC VisualView HMI Version 9... High Unreviewed
CVE-2017-6051 was published May 13, 2022
A vulnerability has been identified in SIEMENS TD Keypad Designer (All versions). A DLL hijacking... High Unreviewed
CVE-2018-13806 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database